Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/079c5420-4ba8-41e7-b985-8db0c2886192.roa
File: 079c5420-4ba8-41e7-b985-8db0c2886192.roa (raw, json)
Hash identifier: I1+L4Wqcn6ZInF75cxYsXzbuLuznbDTJNYmn8tTbsLA=
Subject key identifier: BD:C5:C5:0D:FE:B0:B6:EE:DE:3D:7E:1F:63:5A:CA:F8:CC:17:65:7D
Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3
Certificate serial: 7AA0236C32B7343753BEA3BF9166A75B924025A7
Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/079c5420-4ba8-41e7-b985-8db0c2886192.roa
Signing time: Fri 03 Jan 2025 00:00:00 +0000
ROA not before: Fri 03 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2620:108:7000::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:a0:23:6c:32:b7:34:37:53:be:a3:bf:91:66:a7:5b:92:40:25:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3
Validity
Not Before: Jan 3 00:00:00 2025 GMT
Not After : Feb 7 23:59:59 2025 GMT
Subject: CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:52:63:46:8f:24:78:e5:32:f9:e1:b4:3a:ad:
00:b1:9a:91:52:7e:15:38:7e:e6:30:78:47:4c:eb:
a3:dd:b0:5a:be:b8:91:9c:e2:b1:0c:04:7a:05:43:
13:1b:db:16:51:ec:ce:79:29:a2:5a:fb:e4:54:c4:
7b:5e:be:a3:39:bf:60:86:35:1b:c9:68:a1:03:e8:
c5:4c:56:3c:c8:f8:40:19:24:0f:38:01:2b:ff:96:
13:17:cd:a1:e1:36:e4:e5:b0:8f:b0:66:ee:82:2b:
68:f4:f2:5a:7e:46:f2:e4:b7:a9:a5:d7:9e:6b:aa:
7d:83:54:d1:93:6c:bd:c5:d4:99:42:cd:39:db:39:
9d:64:a0:63:75:91:d8:26:14:20:ad:20:05:51:e4:
d7:50:3f:a3:41:b0:c1:e9:8e:55:e6:24:3e:16:59:
b4:fd:4e:14:88:c7:dc:2f:05:96:30:52:58:47:1b:
b0:e9:aa:fc:50:9b:9f:c4:64:a8:d6:79:19:ba:a6:
c3:f5:1b:4f:bb:8f:aa:f3:cc:84:5a:6a:af:3f:1b:
bb:9e:f0:ef:60:13:d4:f8:c7:dd:c7:ed:d2:45:41:
f3:20:c0:fa:d9:34:21:95:85:06:13:c8:2d:17:28:
6e:7e:ed:de:bb:22:31:42:b0:34:0e:5d:ef:30:c5:
ed:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C5:C5:0D:FE:B0:B6:EE:DE:3D:7E:1F:63:5A:CA:F8:CC:17:65:7D
X509v3 Authority Key Identifier:
keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/079c5420-4ba8-41e7-b985-8db0c2886192.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2620:108:7000::/44
Signature Algorithm: sha256WithRSAEncryption
04:d9:78:96:fb:9f:90:43:ad:4b:e7:3d:7c:d8:99:19:5c:39:
8e:71:93:91:64:99:2a:5f:16:dd:d7:91:54:61:ff:18:24:59:
31:17:66:87:b1:88:ff:9b:c8:2a:62:03:a0:28:1d:d2:98:22:
05:2e:8a:65:23:63:63:b7:87:56:a6:35:90:cd:c7:55:16:6b:
6f:c5:05:68:fb:47:cc:3b:6d:a5:f1:04:ce:95:c5:59:70:54:
5d:d9:79:30:cc:ef:2c:07:40:93:3b:04:78:af:00:1f:9f:30:
38:21:49:c1:83:78:99:21:38:ef:c5:9f:bb:97:f7:39:f6:b8:
1a:29:1f:e9:19:38:03:72:4f:6c:d3:26:32:1f:1f:b1:b9:13:
a9:df:fd:e8:11:4e:46:28:ce:e1:f1:f1:9e:e8:a2:42:6f:5b:
3c:d9:1e:9e:df:25:d1:0c:f4:5e:4e:49:3a:94:e0:12:55:44:
7d:ca:cd:0a:ba:65:be:40:9f:cb:30:fe:e4:4b:de:cc:b8:71:
a5:5b:f1:b9:c2:bc:b9:9e:b8:7c:30:75:79:f1:8a:a6:a8:37:
e4:7f:a9:4e:0f:a4:2d:e7:ed:4e:ef:82:f1:8f:23:38:eb:4f:
df:51:96:50:c7:6b:8e:af:c3:12:f7:50:4d:78:e1:ef:fe:a8:
b9:2f:5e:7e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 9 09:09:27 2025 by rpki-client